CVE-2026-2408

Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension...

CVE-2026-2408 Use-after-free in Cloud Workloads

Tanium addressed a use-after-free vulnerability in the Cloud Workloads Enforce client extension...

EUVD-2020-2408

Malware in sbrugna...

Microsoft Azure Stack 路径遍历漏洞

Microsoft Azure Stack is a hybrid cloud computing software solution based on the Azure cloud platform from Microsoft USA. The product supports building and deploying hybrid applications. A path traversal vulnerability exists in Microsoft Azure Stack. An attacker exploiting this vulnerability coul...

TencentOS Server 4: openssl (TSSA-2024:0914)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0914 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2023-2408

A vulnerability, which was classified as critical, has been found in SourceCodester AC Repair and Services System 1.0. Affected by this issue is some unknown functionality of the file services/view.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotel...

CVE-2011-2408

Cross-site scripting XSS vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2002-2408

Gordano Messaging Server GMS Mail 8 a.k.a. NTMail only filters email messages for the first recipient, which allows remote attackers to bypass JUCE filters by sending a message to more than one user on the GMS server...

CVE-2025-2408

creationtimestamp| type| source ---|---|--- 2025-04-10 13:43:26+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114313960192880711 2025-04-10 13:44:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114313962647315508 2025-04-10 15:32:56+00:00| seen|...

CVE-2025-2408

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

CVE-2025-2408 Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

CVE-2025-2408

GitLab CE/EE is affected by CVE-2025-2408 in versions 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions, users could bypass IP access restrictions and view sensitive information (information disclosure). Remediation: upgrade to GitLab 17.8.7, 17.9.6, or 1...

CVE-2025-2408

Removed by vendor...

CVE-2025-2408 Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

GitLab 13.12 < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-2408)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access...

CVE-2025-27688

Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

Dell ThinOS 安全漏洞

Dell ThinOS is a client operating system from the American company Dell. An authorization issue vulnerability exists in Dell ThinOS 2408 and prior versions, which arises from improper privilege settings and can be exploited by a local, low-privilege attacker to cause an elevation of privilege...

CVE-2024-2408

creationtimestamp| type| source ---|---|--- 2025-03-14 14:45:16+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7559...

CVE-2024-53289

Dell ThinOS version 2408 contains a Time-of-check Time-of-use TOCTOU Race Condition vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges...

Dell ThinOS 命令注入漏洞

Dell ThinOS is a client operating system from the American company Dell. A command injection vulnerability exists in Dell ThinOS version 2408, which stems from improper neutralization of special elements, and can be exploited by an attacker with local access rights to cause command execution...